[Git][security-tracker-team/security-tracker][master] new ansible, edk2 issues
Moritz Muehlenhoff
jmm at debian.org
Fri Jul 17 08:52:45 BST 2020
Moritz Muehlenhoff pushed to branch master at Debian Security Tracker / security-tracker
Commits:
d7de40a0 by Moritz Muehlenhoff at 2020-07-17T09:52:15+02:00
new ansible, edk2 issues
one thunderbird issue already fixed in last DSA/DLA
- - - - -
3 changed files:
- data/CVE/list
- data/DLA/list
- data/DSA/list
Changes:
=====================================
data/CVE/list
=====================================
@@ -354,6 +354,8 @@ CVE-2020-15647
RESERVED
CVE-2020-15646
RESERVED
+ - thunderbird 1:68.10.0-1
+ NOTE: https://www.mozilla.org/en-US/security/advisories/mfsa2020-26/#CVE-2020-15646
CVE-2020-15645
RESERVED
CVE-2020-15644
@@ -3550,6 +3552,8 @@ CVE-2020-14333
RESERVED
CVE-2020-14332
RESERVED
+ - ansible <unfixed>
+ NOTE: https://bugzilla.redhat.com/show_bug.cgi?id=1857805
CVE-2020-14331
RESERVED
CVE-2020-14330
@@ -54964,6 +54968,9 @@ CVE-2019-14561
RESERVED
CVE-2019-14560
RESERVED
+ - edk2 <unfixed>
+ [buster] - edk2 <no-dsa> (Minor issue)
+ NOTE: https://bugzilla.tianocore.org/show_bug.cgi?id=2167
CVE-2019-14559 [memory leak in ArpOnFrameRcvdDpc]
RESERVED
- edk2 0~20200229.4c0f6e34-1 (bug #952926; low)
=====================================
data/DLA/list
=====================================
@@ -103,7 +103,7 @@
{CVE-2020-0543 CVE-2020-0548 CVE-2020-0549}
[jessie] - intel-microcode 3.20200609.2~deb8u1
[12 Jun 2020] DLA-2247-1 thunderbird - security update
- {CVE-2020-12398 CVE-2020-12399 CVE-2020-12405 CVE-2020-12406 CVE-2020-12410}
+ {CVE-2020-12417 CVE-2020-12418 CVE-2020-12419 CVE-2020-12420 CVE-2020-12421 CVE-2020-15646}
[jessie] - thunderbird 1:68.9.0-1~deb8u2
[12 Jun 2020] DLA-2233-2 python-django - regression update
[jessie] - python-django 1.7.11-1+deb8u10
=====================================
data/DSA/list
=====================================
@@ -22,7 +22,7 @@
{CVE-2019-11048 CVE-2020-7062 CVE-2020-7063 CVE-2020-7064 CVE-2020-7065 CVE-2020-7066 CVE-2020-7067}
[buster] - php7.3 7.3.19-1~deb10u1
[05 Jul 2020] DSA-4718-1 thunderbird - security update
- {CVE-2020-12417 CVE-2020-12418 CVE-2020-12419 CVE-2020-12420 CVE-2020-12421}
+ {CVE-2020-12417 CVE-2020-12418 CVE-2020-12419 CVE-2020-12420 CVE-2020-12421 CVE-2020-15646}
[stretch] - thunderbird 1:68.10.0-1~deb9u1
[buster] - thunderbird 1:68.10.0-1~deb10u1
[05 Jul 2020] DSA-4717-1 php7.0 - security update
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d7de40a034682528e213c473d0740da095d44b37
--
View it on GitLab: https://salsa.debian.org/security-tracker-team/security-tracker/-/commit/d7de40a034682528e213c473d0740da095d44b37
You're receiving this email because of your account on salsa.debian.org.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://alioth-lists.debian.net/pipermail/debian-security-tracker-commits/attachments/20200717/aa540772/attachment-0001.html>
More information about the debian-security-tracker-commits
mailing list